Under Armour, Inc. PCI Project Manager in Baltimore, Maryland

PCI Project Manager

110174 Baltimore, Maryland

03/13/2018 Corporate

Apply Now

Save JobRemove Job

View Saved Jobs

Apply Later

Under Armour is all about performance. Because what we make empowers athletes in every form to push themselves, to turn good into great, and to stay hungry for whatever comes next. And this is exactly what we expect from each other.

Working with us means one key thing: no matter what you do, you see every day and every project as a chance to push your field forward. In every store and every office, we build teams where everyone is an MVP. And together we tackle every challenge head on. Because we work to push the gear, the game, and ourselves farther.

We’re looking for people who do more than good work.

We’re looking for the Best in Every Game.

Under Armour is the chosen brand of this generation of athletes... and the athletes of tomorrow. We're about performance - in training and on game day, in blistering heat and bitter cold. Whatever the conditions, whatever the sport, Under Armour delivers the advantage athletes have come to demand.

That demand has created an environment of growth. An environment where building a great team is vital. An environment where doing whatever it takes is the baseline and going above and beyond to protect the Brand is commonplace.

The world's hungriest athletes live by a code, a pledge to themselves and everyone else: Protect This House... I Will. Our goal is to Build A Great Team! Will YOU…Protect This House?!


The PCI Compliance Project Manager is a key member of the Compliance team and is instrumental in ensuring the compliance of people, processes, and technology with the PCI DSS. This role will own the coordination of compliance activities across Under Armour’s in-scope business units and work closely with IT, engineering teams, and cyber security. The PCI Compliance Project Manager will advise on proposed changes to business processes that could impact compliance and draft required documentation. For example, this role will advise on new payment solutions, security tools, and policies that could impact PCI DSS scope and compliance and prepare the appropriate evidence for the annual PCI Self-Assessment Questionnaires (SAQs) and/or Report on Compliance (ROC).

Essential Duties & Responsibilities

  • Act as the single point-of-contact / subject matter resource for all efforts related to PCI and other data governance frameworks.

  • Monitor and manage annual reports and self-certifications, such as PCI SAQs and/or ROC with external QSA assessors.

  • Track and report on the compliance status of each in-scope process so that enterprise level compliance can be determined.

  • Track and report on the remediation plans and timelines associated with compliance gaps in each in-scope process.

  • Manage issues where compliance may be at risk.

  • Risk assess new projects to ensure compliance is accounted for.

  • Serve as the primary enforcement arm of policies and standards with the business.

  • Monitor changes to the PCI DSS and other data governance frameworks and evaluate compliance status impact at UA.

Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education and/or Experience

  • At least 5-7 years of IT or e-commerce project management experience

  • 5-7 years of IT Security or IT Audit experience preferred

  • Experience with PCI DSS requirements and compliance preferred

  • Industry certifications, such as ISA, CISA, CISSP, CISM, or CRISC, preferred

  • Retail industry experience preferred

  • Possess a thorough understanding of payment processes and related systems

  • Experience scoping data environments and evaluating those environments against set controls

  • Experience executing remediation activities to achieve compliance with data governance requirements and driving necessary system and process updates to maintain compliance

  • Demonstrated ability to understand and document complex IT environments and payment processes

  • Experience reviewing documentation and technical evidence to meet PCI DSS requirements and executing PCI DSS SAQs and/or ROC preferred

Other Skills and abilities

  • Ability to maintain PCI ISA certification

  • Willingness to share knowledge and experiences with less experienced and/or technical teammates through training and mentoring to help grow the team

  • PC experience: MS Office (Word, Excel, Outlook, etc.)

  • Experience with Visio or other flowcharting software a plus

  • Ability to multi-task in a fast paced environment independently and as a member of a team

  • Excellent oral and written communication skills

  • Ability to identify and resolve business problems within a team setting

  • Ability to understand and document business processes and related internal controls in narrative and/or flowchart formats

  • Strong project management skills

Under Armour is an equal employment opportunity employer. We are committed to providing equal employment opportunities to all qualified individuals without regard to the following legally protected characteristics: race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military/veteran status, or any other characteristic protected by local, state or federal law. We assure you that your opportunity for employment with Under Armour depends solely on your qualifications.